1 Feb
2005
1 Feb
'05
6:37 p.m.
On Tue, Feb 01, 2005 at 12:49:48PM -0500, mental@...3... wrote:
I would be very curious to see what happened if we simply changed the password but left the IPs unbanned. Depending on how quickly (or if) the board is respammed that will give us some idea how the attack is being performed -- i.e.:
I've updated the password. I suspect they're parsing, based on my observations of similar changes I made to OSDL's wiki. In the end, we just didn't show the password; you had to know it to do updates. Rather defeats the purpose of a wiki, though.
--
Kees Cook @outflux.net